You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi,
Function SSL_CTX_new() returns a pointer to an SSL_CTX object on success or NULL on error. However, the function SSL_CTX_new() in keepalived/genhash/ssl.c didn't check the return value is NULL or not, before passing the return value as an argument to the function SSL_CTX_set_verify_depth(). See the following details.
Chi Li, Zuxing Gu, Jiecheng Wu
The text was updated successfully, but these errors were encountered:
pqarmitage
added a commit
to pqarmitage/keepalived
that referenced
this issue
Sep 19, 2018
Issue acassen#1003 identified that genhash used the return value of
SSL_CTX_new() without checking whether it was NULL.
This commits now adds the necessary check, and also does the
same in keepalived build_ssl_ctx() in check_ssl.c.
Signed-off-by: Quentin Armitage <quentin@armitage.org.uk>
Commit a007e93 adds a check of the return value of SSL_CTX_new(). More importantly it also adds the same check to keepalived in check_ssl.c/build_ssl_ctx().
Hi,
Function SSL_CTX_new() returns a pointer to an SSL_CTX object on success or NULL on error. However, the function SSL_CTX_new() in keepalived/genhash/ssl.c didn't check the return value is NULL or not, before passing the return value as an argument to the function SSL_CTX_set_verify_depth(). See the following details.
Chi Li, Zuxing Gu, Jiecheng Wu
The text was updated successfully, but these errors were encountered: